Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA12174
HistoryMay 11, 2021 - 12:00 a.m.

KLA12174 Multiple vulnerabilities in Microsoft Windows

2021-05-1100:00:00
Kaspersky Lab
threats.kaspersky.com
43

9.9 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

8.9 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.973 High

EPSS

Percentile

99.9%

JSON

Detect date:

05/11/2021

Severity:

Critical

Description:

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, spoof user interface, obtain sensitive information, bypass security restrictions, cause denial of service.

Exploitation:

Public exploits exist for this vulnerability.

Affected products:

Windows Server, version 1909 (Server Core installation)
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
Windows 10 Version 1803 for x64-based Systems
Windows 10 for x64-based Systems
Windows 10 Version 1809 for x64-based Systems
Windows 8.1 for 32-bit systems
Windows 10 Version 1809 for ARM64-based Systems
Windows 10 Version 20H2 for ARM64-based Systems
Windows 10 Version 1909 for ARM64-based Systems
Windows Server, version 2004 (Server Core installation)
Windows 10 Version 1607 for x64-based Systems
Windows 10 Version 20H2 for 32-bit Systems
Windows 10 Version 1909 for 32-bit Systems
Windows 10 Version 2004 for x64-based Systems
Windows Server 2019 (Server Core installation)
Windows Server 2012 R2 (Server Core installation)
Windows Server 2008 for x64-based Systems Service Pack 2
Windows 10 Version 1909 for x64-based Systems
Windows Server 2012
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
Windows Server 2012 (Server Core installation)
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Windows RT 8.1
Windows 7 for 32-bit Systems Service Pack 1
Windows 10 for 32-bit Systems
Windows Server 2019
Windows 10 Version 1607 for 32-bit Systems
Windows Server 2016
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows 10 Version 1809 for 32-bit Systems
Windows 10 Version 1803 for ARM64-based Systems
Windows 10 Version 20H2 for x64-based Systems
Windows 10 Version 2004 for ARM64-based Systems
Windows 10 Version 2004 for 32-bit Systems
Windows Server 2012 R2
Windows Server 2016 (Server Core installation)
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows 7 for x64-based Systems Service Pack 1
Windows 10 Version 1803 for 32-bit Systems
Windows Server, version 20H2 (Server Core Installation)
Windows 8.1 for x64-based systems

Solution:

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories:

CVE-2021-28476
CVE-2021-31188
CVE-2020-24588
CVE-2021-31166
CVE-2021-31192
CVE-2021-31184
CVE-2021-28465
CVE-2021-31167
CVE-2021-31191
CVE-2021-31205
CVE-2021-31208
CVE-2021-31187
CVE-2020-26144
CVE-2021-31193
CVE-2021-28455
CVE-2021-31186
CVE-2021-31165
CVE-2021-31190
CVE-2021-31182
CVE-2021-31185
CVE-2021-28479
CVE-2021-31168
CVE-2021-31169
CVE-2021-31194
CVE-2021-31170
CVE-2020-24587

Impacts:

ACE

Related products:

Microsoft Windows

CVE-IDS:

CVE-2021-284769.9Critical
CVE-2021-311887.8Critical
CVE-2021-311867.4High
CVE-2020-245883.5Warning
CVE-2021-311845.5High
CVE-2021-311827.1High
CVE-2020-261446.5High
CVE-2021-311937.8Critical
CVE-2021-284558.8Critical
CVE-2021-311948.8Critical
CVE-2020-245872.6Warning
CVE-2021-311669.8Critical
CVE-2021-311927.8Critical
CVE-2021-284657.8Critical
CVE-2021-311677.8Critical
CVE-2021-311915.5High
CVE-2021-312056.5High
CVE-2021-312087.8Critical
CVE-2021-311877.8Critical
CVE-2021-311657.8Critical
CVE-2021-311907.8Critical
CVE-2021-311855.5High
CVE-2021-284795.5High
CVE-2021-311687.8Critical
CVE-2021-311697.8Critical
CVE-2021-311707.8Critical

Microsoft official advisories:

KB list:

5003209
5003197
5003174
5003208
5003171
5003172
5003169
5003173
5003203
5003220

References

Related

mskb 18
nessus 17
openvas 10
kaspersky 1
rapid7blog 1
threatpost 7
malwarebytes 2
qualysblog 1
krebs 1
freebsd_advisory 1
lenovo 2
hp 1
freebsd 1
intel 1
cnvd 10
mscve 26
zdi 5
prion 26
ics 2
cve 26
githubexploit 16
seebug 2
attackerkb 3
metasploit 1
checkpoint_advisories 3
cisa_kev 1
ubuntucve 3
veracode 3
redhatcve 3
debiancve 2
zdt 1
thn 1
checkpoint_security 1
mskb
mskb
May 11, 2021—KB5003173 (OS Builds 19041.985, 19042.985, and 19043.985)
2021-05-11 07:00:00
May 11, 2021—KB5003171 (OS Build 17763.1935)
2021-05-11 07:00:00
May 11, 2021—KB5003169 (OS Build 18363.1556)
2021-05-11 07:00:00
nessus
nessus
KB5003173: Windows 10 version 2004 / Windows 10 version 20H2 Security Update (May 2021)
2021-05-11 00:00:00
KB5003169: Windows 10 version 1909 Security Update (May 2021)
2021-05-11 00:00:00
KB5003208: Windows Server 2012 Security Update (May 2021)
2021-05-12 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5003173)
2021-05-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5003169)
2021-05-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5003174)
2021-05-12 00:00:00
kaspersky
kaspersky
KLA12167 Multiple vulnerabilities in Microsoft Products (ESU)
2021-05-11 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - May 2021
2021-05-11 23:44:00
threatpost
threatpost
Wormable Windows Bug Opens Door to DoS, RCE
2021-05-11 20:05:44
What a Year It's Been: RSA 2021 Embraces 'Resilience'
2021-05-17 19:40:27
Scammers Pose as Meal-Kit Services to Steal Customer Data
2021-05-18 20:48:13
malwarebytes
malwarebytes
Get patching! Wormable Windows flaw headlines Patch Tuesday
2021-05-12 12:46:09
FragAttack: New Wi-Fi vulnerabilities that affect… basically everything
2021-05-12 17:31:21
qualysblog
qualysblog
Microsoft & Adobe Patch Tuesday (May 2021) – Qualys covers 85 Vulnerabilities, 26 Critical
2021-05-11 21:53:37
krebs
krebs
Microsoft Patch Tuesday, May 2021 Edition
2021-05-11 20:28:19
freebsd_advisory
freebsd_advisory
FreeBSD-SA-22:02.wifi
2022-03-15 00:00:00
lenovo
lenovo
Intel® PROSet and Wireless WiFi, Intel vPro® CSME WiFi, and Intel® Killer™ WiFi Advisory - Lenovo Support NL
2021-05-11 20:39:26
Aggregation and Fragmentation Attacks against Wi-Fi (FragAttacks) Vulnerabilities - Lenovo Support NL
2021-06-07 20:37:01
hp
hp
Intel® PROSet/Wireless WiFi, Intel vPro® CSME WiFi and Killer™ WiFi May 2021 Security Updates
2021-05-14 00:00:00
freebsd
freebsd
FreeBSD-kernel -- Multiple WiFi issues
2022-03-15 00:00:00
intel
intel
Intel® PROSet/Wireless WiFi , Intel vPro® CSME WiFi and Killer™ WiFi Advisory Advisory
2021-05-11 00:00:00
cnvd
cnvd
Microsoft Windows/Windows Server Elevation of Privilege Vulnerability (CNVD-2021-66099)
2021-05-12 00:00:00
Microsoft Windows/Windows Server Elevation of Privilege Vulnerability (CNVD-2021-66100)
2021-05-12 00:00:00
Microsoft Windows/Windows Server Denial of Service Vulnerability (CNVD-2021-66064)
2021-05-12 00:00:00
mscve
mscve
Windows Container Manager Service Elevation of Privilege Vulnerability
2021-05-11 07:00:00
Windows Desktop Bridge Denial of Service Vulnerability
2021-05-11 07:00:00
Windows SMB Client Security Feature Bypass Vulnerability
2021-05-11 07:00:00
zdi
zdi
Microsoft Windows Groove Music FLAC File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
2021-05-13 00:00:00
Microsoft Windows Groove Music FLAC File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
2021-05-13 00:00:00
Microsoft Windows WalletService Directory Junction Privilege Escalation Vulnerability
2021-05-13 00:00:00
prion
prion
Remote code execution
2021-05-11 19:15:00
Privilege escalation
2021-05-11 19:15:00
Denial of service
2021-05-11 19:15:00
ics
ics
Mitsubishi Electric GT25-WLAN (Update A)
2022-05-12 12:00:00
Hitachi ABB Power Grids TropOS
2021-08-24 12:00:00
cve
cve
CVE-2021-31185
2021-05-11 19:15:00
CVE-2021-31190
2021-05-11 19:15:00
CVE-2021-31165
2021-05-11 19:15:00
githubexploit
githubexploit
Exploit for Vulnerability in Microsoft
2021-05-31 18:02:39
Exploit for Use After Free in Microsoft
2022-03-07 18:56:52
Exploit for Use After Free in Microsoft
2021-05-17 11:12:45
seebug
seebug
Microsoft Hyper-V 远程代码执行漏洞(CVE-2021-28476)
2021-06-01 00:00:00
HTTP协议栈远程代码执行漏洞(CVE-2021-31166)
2021-05-13 00:00:00
attackerkb
attackerkb
CVE-2021-31167
2021-05-11 00:00:00
CVE-2020-24587
2021-05-11 00:00:00
CVE-2021-31166
2021-05-11 00:00:00
metasploit
metasploit
Windows IIS HTTP Protocol Stack DOS
2022-03-16 21:55:03
checkpoint_advisories
checkpoint_advisories
Microsoft Windows Graphics Component Elevation of Privilege (CVE-2021-31170)
2021-05-11 00:00:00
Microsoft Windows Graphics Component Elevation of Privilege (CVE-2021-31188)
2021-05-11 00:00:00
Microsoft HTTP Protocol Stack Remote Code Execution (CVE-2021-31166)
2021-05-12 00:00:00
cisa_kev
cisa_kev
Microsoft HTTP Protocol Stack Remote Code Execution Vulnerability
2022-04-06 00:00:00
ubuntucve
ubuntucve
CVE-2020-26144
2021-05-11 00:00:00
CVE-2020-24587
2021-05-11 00:00:00
CVE-2020-24588
2021-05-11 00:00:00
veracode
veracode
Network Packet Injection
2021-11-17 22:37:50
CVE-2020-24587 Kernel: Reassembling Fragments Encrypted Under Different Keys
2021-11-17 22:37:04
Packet Injection
2021-11-17 22:37:10
redhatcve
redhatcve
CVE-2020-26144
2021-05-19 00:26:47
CVE-2020-24588
2021-05-13 05:56:34
CVE-2020-24587
2021-05-13 05:56:41
debiancve
debiancve
CVE-2020-24588
2021-05-11 20:15:00
CVE-2020-24587
2021-05-11 20:15:00
zdt
zdt
Windows 10 v21H1 - HTTP Protocol Stack Remote Code Execution Exploit
2023-07-10 00:00:00
thn
thn
Latest Microsoft Windows Updates Patch Dozens of Security Flaws
2021-05-12 09:15:00
checkpoint_security
checkpoint_security
Check Point Response to Wi-Fi FragAttacks in Quantum Spark appliances
2021-06-09 23:24:30

9.9 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

8.9 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.973 High

EPSS

Percentile

99.9%

JSON
Related for KLA12174
mskb18nessus17openvas10kaspersky1rapid7blog1threatpost7malwarebytes2qualysblog1krebs1freebsd_advisory1lenovo2hp1freebsd1intel1cnvd10mscve26zdi5prion26ics2cve26githubexploit16seebug2attackerkb3metasploit1checkpoint_advisories3cisa_kev1ubuntucve3veracode3redhatcve3debiancve2zdt1thn1checkpoint_security1